Uploaded image for project: 'Keycloak'
  1. Keycloak
  2. KEYCLOAK-7820

SAML LogoutRequest should contain NameQualifer and SPNameQualifier

    XMLWordPrintable

    Details

    • Type: Enhancement
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Out of Date
    • Affects Version/s: 4.1.0.Final
    • Fix Version/s: None
    • Component/s: SAML
    • Labels:
    • Docs QE Status:
      NEW
    • QE Status:
      NEW

      Description

      Keycloak does not send the NameQualifer and SPNameQualifier in a SAML Logout request.
      Adding those values in Keycloak SAML logout requests would improve its interoperability with other software products.

      For example in case of Shibboleth, which is widely used in universities, those values can not be derived easily:
      > https://issues.shibboleth.net/jira/browse/IDP-1297

      Discussion started in keycloak dev mailing list:
      http://lists.jboss.org/pipermail/keycloak-dev/2018-July/010988.html

        Attachments

          Activity

            People

            Assignee:
            hmlnarik Hynek Mlnařík
            Reporter:
            ddtxra Daniel Teixeira (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: